CVE-2002-1661

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2002-1661
The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote attackers to cause a denial of service (infinite loop) when leafnode requests a cross-posted article to one group whose name is a prefix of another group.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://leafnode.sourceforge.net/leafnode-SA-2002-01.txt Patch
http://marc.info/?l=bugtraq&m=104127108823436&w=2
http://marc.info/?l=bugtraq&m=104152295210075&w=2
http://secunia.com/advisories/7799
http://secunia.com/advisories/7801
http://secunia.com/advisories/7870
http://www.mandriva.com/security/advisories?name=MDKSA-2003:005
http://www.securityfocus.com/bid/6490 Patch
http://www.securitytracker.com/id?1005865
https://exchange.xforce.ibmcloud.com/vulnerabilities/10942
http://leafnode.sourceforge.net/leafnode-SA-2002-01.txt Patch
http://marc.info/?l=bugtraq&m=104127108823436&w=2
http://marc.info/?l=bugtraq&m=104152295210075&w=2
http://secunia.com/advisories/7799
http://secunia.com/advisories/7801
http://secunia.com/advisories/7870
http://www.mandriva.com/security/advisories?name=MDKSA-2003:005
http://www.securityfocus.com/bid/6490 Patch
http://www.securitytracker.com/id?1005865
https://exchange.xforce.ibmcloud.com/vulnerabilities/10942
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:leafnode:leafnode:1.9.19:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.20:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.21:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.22:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.23:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.24:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.25:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.26:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.27:*:*:*:*:*:*:*
cpe:2.3:a:leafnode:leafnode:1.9.29:*:*:*:*:*:*:*
History

20 Nov 2024, 23:41

Type Values Removed Values Added
References () http://leafnode.sourceforge.net/leafnode-SA-2002-01.txt - Patch () http://leafnode.sourceforge.net/leafnode-SA-2002-01.txt - Patch
References () http://marc.info/?l=bugtraq&m=104127108823436&w=2 - () http://marc.info/?l=bugtraq&m=104127108823436&w=2 -
References () http://marc.info/?l=bugtraq&m=104152295210075&w=2 - () http://marc.info/?l=bugtraq&m=104152295210075&w=2 -
References () http://secunia.com/advisories/7799 - () http://secunia.com/advisories/7799 -
References () http://secunia.com/advisories/7801 - () http://secunia.com/advisories/7801 -
References () http://secunia.com/advisories/7870 - () http://secunia.com/advisories/7870 -
References () http://www.mandriva.com/security/advisories?name=MDKSA-2003:005 - () http://www.mandriva.com/security/advisories?name=MDKSA-2003:005 -
References () http://www.securityfocus.com/bid/6490 - Patch () http://www.securityfocus.com/bid/6490 - Patch
References () http://www.securitytracker.com/id?1005865 - () http://www.securitytracker.com/id?1005865 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/10942 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/10942 -
Information

Published : 2002-12-31 05:00

Updated : 2025-04-03 01:03

NVD link : CVE-2002-1661

Mitre link : CVE-2002-1661

CVE.ORG link : CVE-2002-1661

JSON object : View

Products Affected

leafnode

  • leafnode
CWE
NVD-CWE-Other